javasec / log4j-patch
log4j-patch 修改字节码实现补丁防御
☆20Updated 3 years ago
Alternatives and similar repositories for log4j-patch:
Users that are interested in log4j-patch are comparing it to the libraries listed below
- 就是一个练习RMI反序列化的最简单环境☆30Updated 3 years ago
- jre8u20 gadget☆33Updated 3 years ago
- 宽字节安全团队的博客☆30Updated 4 years ago
- Java RCE 回显测试代码☆12Updated 3 years ago
- 手把手教你写IAST系列☆24Updated last year
- CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process…☆25Updated 4 years ago
- Godzilla v1.0 source code☆38Updated 4 years ago
- Apache Shiro payload AES解密☆28Updated 4 years ago
- Apache/Alibaba Dubbo <= 2.7.3 PoC Code for CVE-2021-25641 RCE via Deserialization of Untrusted Data; Affects Versions <= 2.7.6 With Diffe…☆52Updated 3 years ago
- 分享在建设安全管理体系、ISO27001、等级保护、安全评审过程中的点点滴滴☆23Updated 6 years ago
- 收集规则☆30Updated 2 years ago
- ☆29Updated 3 years ago
- 渗透测试复盘总结☆15Updated 4 years ago
- 个人使用的一款Web CMS指纹扫描器☆25Updated 4 years ago
- ☆33Updated 2 years ago
- Tomcat基于动态注册Filter的无文件Webshell☆26Updated 4 years ago
- zentao Getshell☆10Updated 4 years ago
- BCEL class转换插件☆25Updated 4 years ago
- ThinkPHP各版本反序列化利用代码☆32Updated 4 years ago
- 记录调试分析ysoserial系列的学习过程,主要包含手动构造的一些poc,便于加深对漏洞和工具的理解☆30Updated 4 years ago
- ☆46Updated 3 years ago
- ☆19Updated 3 years ago
- springboot getRequestURI acl bypass☆37Updated 4 years ago
- 打CTF实在厌倦了找利用链,就知道一个fastjson的版本,一堆依赖找啊找,头都疼。为了解决这个烦恼,用了卓卓师傅的fastjson黑名单工具和库,自己改造了一下。☆32Updated 5 years ago
- Detect burp☆33Updated 3 years ago
- woodpecker框架专用bcel库☆12Updated 4 years ago
- 通过Web获取访客机器的hostname字段内容。☆64Updated 3 years ago
- Dependencies with Log4j2 Checklist☆35Updated 3 years ago
- Celestion 是一个无回显漏洞测试辅助平台,平台使用flask编写,提供DNSLOG,HTTPLOG等功能。 (界面懒得弄,后续有需要再说)。☆30Updated last year
- ☆19Updated 2 years ago